LINUX.ORG.RU

Настройка Basic Authentication в SQUID

 , ,


0

1

Всем привет! Моя задача настроить SQUID на Ubuntu 16.04.6 (виртуалка). UFW на Ubuntu отключен, на хостовой машине firewall так же отключен. Задача сделать прокси для любых IP с авторизацией пользователей, обычной (без Acrive Directory). Установил squid и apache выполнил команду - htpasswd -c /etc/squid/squid_passwd user1 Ввел пароль, но пароль и логин не работают и постоянно запрашиваются вновь.

конфиг ниже:

http_port 3128

auth_param basic realm Default proxy server

auth_param basic program /usr/lib/squid/basic_ncsa_auth /etc/squid/passwd

auth_param basic children 5

auth_param basic realm Proxy Authentication Required

auth_param basic credentialsttl 2 hours

auth_param basic casesensitive off

acl all_ip src all

acl user1 proxy_auth REQUIRED

http_access allow user1

http_access allow all_ip

http_access deny all

access log:

1555333458.274 2 192.168.1.5 TCP_DENIED/407 4083 CONNECT ya.ru:443 - HIER_NONE/- text/html

1555333458.441 2 192.168.1.5 TCP_DENIED/407 4163 CONNECT sovetnik.market.yandex.ru:443 - HIER_NONE/- text/html

1555333458.755 1 192.168.1.5 TCP_DENIED/407 4167 CONNECT tiles.services.mozilla.com:443 - HIER_NONE/- text/html

1555333458.839 1 192.168.1.5 TCP_DENIED/407 4171 CONNECT safebrowsing.googleapis.com:443 - HIER_NONE/- text/html

cache log:

2019/04/15 16:00:28 kid1| Current Directory is /

2019/04/15 16:00:28 kid1| Starting Squid Cache version 3.5.12 for x86_64-pc-linux-gnu...

2019/04/15 16:00:28 kid1| Service Name: squid

2019/04/15 16:00:28 kid1| Process ID 630

2019/04/15 16:00:28 kid1| Process Roles: worker

2019/04/15 16:00:28 kid1| With 65535 file descriptors available

2019/04/15 16:00:28 kid1| Initializing IP Cache...

2019/04/15 16:00:28 kid1| DNS Socket created at [::], FD 6

2019/04/15 16:00:28 kid1| DNS Socket created at 0.0.0.0, FD 8

2019/04/15 16:00:28 kid1| Warning: Could not find any nameservers. Trying to use localhost

2019/04/15 16:00:28 kid1| Please check your /etc/resolv.conf file

2019/04/15 16:00:28 kid1| or use the 'dns_nameservers' option in squid.conf.

2019/04/15 16:00:28 kid1| helperOpenServers: Starting 0/5 'basic_ncsa_auth' processes

2019/04/15 16:00:28 kid1| helperOpenServers: No 'basic_ncsa_auth' processes needed.

2019/04/15 16:00:28 kid1| Logfile: opening log daemon:/var/log/squid/access.log

2019/04/15 16:00:28 kid1| Logfile Daemon: opening log /var/log/squid/access.log

2019/04/15 16:00:28 kid1| Local cache digest enabled; rebuild/rewrite every 3600/3600 sec

2019/04/15 16:00:28 kid1| Store logging disabled

2019/04/15 16:00:28 kid1| Swap maxSize 0 + 262144 KB, estimated 20164 objects

2019/04/15 16:00:28 kid1| Target number of buckets: 1008

2019/04/15 16:00:28 kid1| Using 8192 Store buckets

2019/04/15 16:00:28 kid1| Max Mem size: 262144 KB

2019/04/15 16:00:28 kid1| Max Swap size: 0 KB

2019/04/15 16:00:28 kid1| Using Least Load store dir selection

2019/04/15 16:00:28 kid1| Current Directory is /

2019/04/15 16:00:28 kid1| Finished loading MIME types and icons.

2019/04/15 16:00:28 kid1| HTCP Disabled.

2019/04/15 16:00:28 kid1| Pinger socket opened on FD 13

2019/04/15 16:00:28 kid1| Squid plugin modules loaded: 0

2019/04/15 16:00:28 kid1| Adaptation support is off.

2019/04/15 16:00:28 kid1| Accepting HTTP Socket connections at local=[::]:3128 remote=[::] FD 11 flags=9

2019/04/15 16:00:28| pinger: Initialising ICMP pinger ...

2019/04/15 16:00:28| pinger: ICMP socket opened.

2019/04/15 16:00:28| pinger: ICMPv6 socket opened

2019/04/15 16:00:29 kid1| storeLateRelease: released 0 objects

2019/04/15 16:00:30 kid1| Reconfiguring Squid Cache (version 3.5.12)...

2019/04/15 16:00:30 kid1| Closing HTTP port [::]:3128

2019/04/15 16:00:30 kid1| Closing Pinger socket on FD 13

2019/04/15 16:00:30 kid1| Logfile: closing log daemon:/var/log/squid/access.log

2019/04/15 16:00:30 kid1| Logfile Daemon: closing log daemon:/var/log/squid/access.log

2019/04/15 16:00:30 kid1| Startup: Initializing Authentication Schemes ...

2019/04/15 16:00:30 kid1| Startup: Initialized Authentication Scheme 'basic'

2019/04/15 16:00:30 kid1| Startup: Initialized Authentication Scheme 'digest'

2019/04/15 16:00:30 kid1| Startup: Initialized Authentication Scheme 'negotiate'

2019/04/15 16:00:30 kid1| Startup: Initialized Authentication Scheme 'ntlm'

2019/04/15 16:00:30 kid1| Startup: Initialized Authentication.

2019/04/15 16:00:30 kid1| Processing Configuration File: /etc/squid/squid.conf (depth 0)

2019/04/15 16:00:30 kid1| Logfile: opening log daemon:/var/log/squid/access.log

2019/04/15 16:00:30 kid1| Logfile Daemon: opening log /var/log/squid/access.log

2019/04/15 16:00:30 kid1| Squid plugin modules loaded: 0

2019/04/15 16:00:30 kid1| Adaptation support is off.

2019/04/15 16:00:30 kid1| Store logging disabled

2019/04/15 16:00:30 kid1| DNS Socket created at [::], FD 9

2019/04/15 16:00:30 kid1| DNS Socket created at 0.0.0.0, FD 10

2019/04/15 16:00:30 kid1| Adding nameserver 77.88.8.88 from /etc/resolv.conf

2019/04/15 16:00:30 kid1| Adding nameserver 77.88.8.2 from /etc/resolv.conf

2019/04/15 16:00:30 kid1| Adding nameserver 77.37.251.33 from /etc/resolv.conf

2019/04/15 16:00:30 kid1| helperOpenServers: Starting 0/5 'basic_ncsa_auth' processes

2019/04/15 16:00:30 kid1| helperOpenServers: No 'basic_ncsa_auth' processes needed.

2019/04/15 16:00:30 kid1| HTCP Disabled.

2019/04/15 16:00:30 kid1| Pinger socket opened on FD 13

2019/04/15 16:00:30 kid1| Finished loading MIME type s and icons.

2019/04/15 16:00:30 kid1| Accepting HTTP Socket connections at local=[::]:3128 remote=[::] FD 11 flags=9

2019/04/15 16:00:30| pinger: Initialising ICMP pinger ...

2019/04/15 16:00:30| pinger: ICMP socket opened.

2019/04/15 16:00:30| pinger: ICMPv6 socket opened

2019/04/15 16:00:41| Pinger exiting.

2019/04/15 16:04:29 kid1| Starting new basicauthenticator helpers...

2019/04/15 16:04:29 kid1| helperOpenServers: Starting 1/5 'basic_ncsa_auth' processes

Пожалуйста, помогите!